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Security Mechanisms in High-Level Network Protocols 
Victor L. Voydock, Stephen T. Kent 

June 1983 ACM Computing Surveys (CSUR), volume 15 issue 2 

Full text available: Ip) pdf(3.23 MB) Additional Information: full citation , references , citings 



Recursive hashing functions for n-grams 
Jonathan D. Cohen 

July 1997 ACM Transactions on Information Systems (TOIS), Volume is issue 3 

Full text available: f Bpdff361.86 KB) Additional Information: full citation , abstract, references , citings, index 
^ terms , review 

Many indexing, retrieval, and comparison methods are based on counting or cataloguing n- 
grams in streams of symbols. The fastest method of implementing such operations is 
through the use of hash tables. Rapid hashing of consecutive n-grams is best done using a 
recursive hash function, in which the hash value of the current n-gram is drived from the 
hash value of its predecessor. This article generalizes recursive hash functions found in 
the ... 

Keywords: n-grams, hashing, hashing functions, recursive hashing 



Fast detection of communication patterns in distributed executions 
Thomas Kunz, Michiel F. H. Seuren 

November 1 997 Proceedings of the 1997 conference of the Centre for Advanced Studies 
on Collaborative research 

Full text available: ^ pdf(4.21 MB) Additional Information: full citation , abstract , references , index terms 

Understanding distributed applications is a tedious and difficult task. Visualizations based on 
process-time diagrams are often used to obtain a better understanding of the execution of 
the application. The visualization tool we use is Poet, an event tracer developed at the 
University of Waterloo. However, these diagrams are often very complex and do not provide 
the user with the desired overview of the application. In our experience, such tools display 
repeated occurrences of non-trivial commun ... 

Illustrative risks to the public in the use of computer systems and related technology 
Peter G. Neumann 

January 1996 ACM SIGSOFT Software Engineering Notes, volume 21 issue 1 
Full text available: Additional Information: 
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5 Performance analysis of MD5 
Joseph D. Touch 

October 1995 ACM SIGCOMM Computer Communication Review , Proceedings of the 
conference on Applications, technologies, architectures, and protocols 
for computer communication, volume 25 issue 4 

Full text available: f g)pdff1.04 MB) Additional Information: full citation , abstract , references , citings , index 
^ terms 

MD5 is an authentication algorithm proposed as the required implementation of the 
authentication option in IPv6. This paper presents an analysis of the speed at which MD5 
can be implemented in software and hardware, and discusses whether its use interferes with 
high bandwidth networking. The analysis indicates that MD5 software currently runs at 85 
Mbps on a 190 Mhz RISC architecture, a rate that cannot be improved more than 20-40%. 
Because MD5 processes the entire body of a packet, this data ra ... 

6 Audience analysis in cyberspace: defining the invisible 
Lisa Rosenberger 

November 1998 ACM SIGDOC Asterisk Journal of Computer Documentation, Volume 22 

Issue 4 

Full text available: ^pdf(491.38 KB) Additional Information: full citation , index terms 



7 Integrating security in a large distributed system 
M. Satyanarayanan 

August 1989 ACM Transactions on Computer Systems (TOCS), volume 7 issue 3 

Full text available- f gl pdf(2.90 MB) Additional Information: full citation , abstract , references , citings , index 
^ terms , review 

Andrew is a distributed computing environment that is a synthesis of the personal 
computing and timesharing paradigms. When mature, it is expected to encompass over 
5,000 workstations spanning the Carnegie Mellon University campus. This paper examines 
the security issues that arise in such an environment and describes the mechanisms that 
have been developed to address them. These mechanisms include the logical and physical 
separation of servers and clients, support for secure communication ... 

8 Watermarking techniques for intellectual property protection 

A. B. Kahng, J. Lach, W. H. Mangione-Smith, S. Mantik, I. L. Markov, M. Potkonjak, P. Tucker, 
H. Wang, G. Wolfe 

May 1998 Proceedings of the 35th annual conference on Design automation - Volume 
00 

Full text available: ^ pdf(243.93 KB) Additional Information: full citation , abstract , references , citings , index 
I Publisher Site 

Digital system designs are the product of valuable effort and know-how. Their embodiments, 
from software and HDL program down to device-level netlist and mask data, represent 
carefully guarded intellectual property (IP). Hence, design methodologies based on IP reuse 
require new mechanisms to protect the rights of IP producers and owners. This paper 
establishes principles of watermarking-based IP protection, where a watermark is a 
mechanism for identificatio ... 
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This paper presents an overview of the Cedar programming environment, focusing on its 
overall structure— that is, the major components of Cedar and the way they are organized. 
Cedar supports the development of programs written in a single programming language, 
also called Cedar. Its primary purpose is to increase the productivity of programmers whose 
activities include experimental programming and the development of prototype software 
systems for a high-performance personal computer. T ... 

10 Pen computing: a technology overview and a vision Q 
Andre Meyer 

July 1995 ACM SIGCHI Bulletin, volume 27 issue 3 

Full text available: * ^pdf(5.14 MB) Additional Information: full citation , abstract , citings , index terms 

This work gives an overview of a new technology that is attracting growing interest in public 
as well as in the computer industry itself. The visible difference from other technologies is in 
the use of a pen or pencil as the primary means of interaction between a user and a 
machine, picking up the familiar pen and paper interface metaphor. From this follows a set 
of consequences that will be analyzed and put into context with other emerging technologies 
and visions. Starting with a short historic ... 

11 Multicast security and its extension to a mobile environment Q 
Li Gong, Nachum Shacham 

March 1995 Wireless Networks, Volume l issue 3 

Full text available: ^pdf(1.22 MB) Additional Information: full citation , abstract , references , ci tings 

Multicast is rapidly becoming an important mode of communication and a good platform for 
building group-oriented services. To be used for trusted communication, however, current 
multicast schemes must be supplemented by mechanisms for protecting traffic, controlling 
participation, and restricting access of unauthorized users to data exchanged by the 
participants. In this paper, we consider fundamental security issues in building a trusted 
multicast facility. We discuss techniques for group- ... 

12 Distributed systems - programming and management: On remote procedure call ||[J 
Patricia Gomes Soares 

November 1992 Proceedings of the 1992 conference of the Centre for Advanced Studies 
on Collaborative research - Volume 2 

Full text available: * ^pdf(4.52 MB) Additional Information: full citation , abstract , references , citings 

The Remote Procedure Call (RPC) paradigm is reviewed. The concept is described, along 
with the backbone structure of the mechanisms that support it. An overview of works in 
supporting these mechanisms is discussed. Extensions to the paradigm that have been 
proposed to enlarge its suitability, are studied. The main contributions of this paper are a 
standard view and classification of RPC mechanisms according to different perspectives, and 
a snapshot of the paradigm in use today and of goals for t ... 

13 Using the ASTRAL model checker to analyze mobile IP Q 
Zhe Dang, Richard A. Kemmerer 

May 1999 Proceedings of the 21st international conference on Software engineering 
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verification, real-time systems, state machines, timing requirements 
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14 Secure audit logs to support computer forensics Q 
Bruce Schneier, John Kelsey 

May 1999 ACM Transactions on Information and System Security (TISSEC), volume 2 

Issue 2 

Full text available: f fj> pdff 125.50 KB) Additional Information: full citation , abstract, references , dtinas, index 
L ^ h ^ terms , review 

In many real-world applications, sensitive information must be kept it log files on an 
untrusted machine. In the event that an attacker captures this machine, we would like to 
guarantee that he will gain little or no information from the log files and to limit his ability to 
corrupt the log files. We describe a computationally cheap method for making all log entries 
generated prior to the logging machine's compromise impossible for the attacker to read, 
and also impossible to modify or dest ... 

Keywords: audit logs, auditing, authenthication, computer forensics, hash chains, intrusion 
detection 



15 Behavioral synthesis techniques for intellectual property protection 
Inki Hong, Miodrag Potkonjak 

June 1999 Proceedings of the 36th ACM/IEEE conference on Design automation 

Full text available: pdfd 57.64 KB) Additional Information: full citation , references , citings , index terms 



16 Application access control at network level 
Refik Molva, Erich Rutsche 

November 1994 Proceedings of the 2nd ACM Conference on Computer and 
communications security 

Full text available: 'g ) pdf(956.82 KB) Additional Information: full citation , abstract , references , index terms 

This paper describes an access control mechanism that enforces at the network level an 
access control decision that is taken at the application level. The mechanism is based on the 
pre-computation of encrypted counters called tickets. An access enforcement device verifies 
the existence of a valid ticket in each packet that is subject to access control and kills 
unauthorized packets. Tickets are not computed as a function of the user data. Due to the 
timing constraints of shared media LANs t ... 
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17 ASHs: Application-specific handlers for high-performance messaging 
Deborah A. Wallach, Dawson R. Engler, M. Frans Kaashoek 

August 1996 ACM SIGCOMM Computer Communication Review , Conference 

proceedings on Applications, technologies, architectures, and protocols 
for computer communications, volume 26 issue 4 

Full text available- W\ pdfd 74 50 KB) Additional Information: full citation , abstract , references , citings , index 
^ : terms 

Application-specific safe message handlers (ASHs) are designed to provide applications with 
hardware-level network performance. ASHs are user-written code fragments that safely and 
efficiently execute in the kernel in response to message arrival. ASHs can direct message 
transfers (thereby eliminating copies) and send messages (thereby reducing send-response 
latency). In addition, the ASH system provides support for dynamic integrated layer 
processing (thereby eliminating duplicate message ... 



New design concepts for an intelligent Internet 
Geng-Sheng Kuo, Jing-Pei Lin 

November 1998 Communications of the ACM, Volume 41 issue n 
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20 Cluster-based scalable network services 
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21 Fast compilation for pipelined reconfigurable fabrics 
Mihai Budiu, Seth Copen Goldstein 
February 1999 Proceedings of the 1999 ACM/SIGDA seventh international symposium 
on Field programmable gate arrays 
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September 1 993 Communications of the ACM, Volume 36 Issue 9 
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Seth Copen Goldstein, Herman Schmit, Matthew Moe, Mihai Budiu, Srihari Cadambi, R. Reed 
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May 1999 ACM SIGARCH Computer Architecture News , Proceedings of the 26th 

annual international symposium on Computer architecture, volume 27 issue 2 
Full text available: Hi pdf(202.69 KB) Additional Information: full citation , abstract , references , citings , index 
■ Publisher Site tenm 

Future computing workloads will emphasize an architecture's ability to perform relatively 
simple calculations on massive quantities of mixed-width data. This paper describes a novel 
reconfigurable fabric architecture, PipeRench, optimized to accelerate these types of 
computations. PipeRench enables fast, robust compilers, supports forward compatibility, and 
virtualizes configurations, thus removing the fixed size constraint present in other fabrics. 
For the first time we explore how the bit-widt ... 
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Scale should be recognized as a primary factor influencing the architecture and 
implementation of distributed systems. This paper uses Andrew, a distributed environment 
at Carnegie Mellon University, to validate this proposition. The design of Andrew is 
dominated by considerations of performance, operability and security. Caching of 
information and placing trust in as few machines as possible emerge as two general 
principles that enhance scalability. The separation of concerns made possible ... 
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